Security fix for fts3/4 corrupt database exploit

sqlite rebased to version 3.26.0 per: https://sqlite.org/releaselog/3_26_0.html

spatialite-tools rebuilt for latest sqlite version

How to install

sudo dnf upgrade --advisory=FEDORA-2018-ccbe8b931c

This update has been submitted for testing by pkubat.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon bojan commented & provided feedback 2 years ago
karma

No regressions here.

User Icon cserpentis commented & provided feedback 2 years ago
karma

works for me

User Icon andilinux commented & provided feedback 2 years ago
karma

works for me

This update has been submitted for batched by bodhi.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago
User Icon piotrp commented & provided feedback 2 years ago

Breaks compatibility with Django. https://code.djangoproject.com/ticket/29182

User Icon piotrp commented & provided feedback 2 years ago

Clicked wrong -1 button, sorry

User Icon churchyard commented & provided feedback 2 years ago
karma

This breaks API very much.

User Icon churchyard commented & provided feedback 2 years ago

To clarify, it breaks behavior, not the interface.

"SQLite 3.26 repoints foreign key constraints on table renames even when foreign_keys pragma is off which breaks every operation that requires a table rebuild to simulate unsupported ALTER TABLE statements."


Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1659379 sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)
0
0
BZ#1659677 sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan) [fedora-all]
0
0

Automated Test Results